Описание
In the Agent Frontend in Open Ticket Request System (OTRS) 3.3.x through 3.3.18, with a crafted URL it is possible to gain information like database user and password.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 6.0.5-1 |
| cosmic | not-affected | 6.0.5-1 |
| devel | not-affected | 6.0.5-1 |
| disco | not-affected | 6.0.5-1 |
| esm-apps/bionic | not-affected | 6.0.5-1 |
| esm-apps/xenial | not-affected | 5.0.7-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
Показывать по
10
4 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
CVSS3: 8.8
nvd
около 8 лет назад
In the Agent Frontend in Open Ticket Request System (OTRS) 3.3.x through 3.3.18, with a crafted URL it is possible to gain information like database user and password.
CVSS3: 8.8
debian
около 8 лет назад
In the Agent Frontend in Open Ticket Request System (OTRS) 3.3.x throu ...
CVSS3: 8.8
github
больше 3 лет назад
In the Agent Frontend in Open Ticket Request System (OTRS) 3.3.x through 3.3.18, with a crafted URL it is possible to gain information like database user and password.
4 Medium
CVSS2
8.8 High
CVSS3